I set up a FTP server on my computer with vsftpd. I am able to connect to the server with any computer that is connected to the internet on the same network as the server. But when I try to access the server from a computer on another network i geat the errors.
Connection timed out
No route to host
I tried to set up portforawding for ports 20 and 21 but that didn't work.

Does 'host [name of server]' (a the host name like "ftp.domainnam.e") return an IP address?
Does 'tcptraceroute [IP address of server] 21' show it reaches the FTP server?
If the IP address of the FTP server is known (and public) but the port closed then you may be experiencing NAT problems as per your "didn't work".


Show us what rules you set or your complete rule set ('sudo /sbin/iptables-save') if unsure because "doesn't work" means nothing.

I only know the IP address of the server because a never set up a hostname.
I ran this command but nothing happened.
I rand the command
and got 1 [my ip] [open] 0.181 ms 0.057 ms 0.051 ms

when i set up port forwarding on my router
I got the error no route to host

with out port forawrding it got the error
connection timed out
and
no route to host

I attached the configuration files for vsftpd

Attached Files

vsftpd.conf.txt (5.4 KB, 6 views)

I just ran the tcptraceroute for port 20 ftp data and it was closed

that was from a computer on same network

this is from off network computer
21 ftp
tcptraceroute 192.168.1.125 21
Selected device eth0, address 128.119.116.251, port 52522 for outgoing packets
Tracing the path to 192.168.1.125 on TCP port 21 (ftp), 30 hops max
1 mor1-rt-n124a-1-vl551.gw.umass.edu (128.119.116.1) 0.588 ms 0.451 ms 0.428 ms
2 core1-rt-ae-1.gw.umass.edu (128.119.0.226) 0.398 ms 0.435 ms 0.387 ms
3 lgrc-rt-106-8-po-10.gw.umass.edu (128.119.0.233) 0.578 ms 0.527 ms 0.490 ms
4 128.119.2.197 0.641 ms 0.643 ms 0.575 ms
5 * * *
6 * * *
7 128.119.2.197 0.668 ms !H * *

20 ftp data
tcptraceroute 192.168.1.125 20
Selected device eth0, address 128.119.116.251, port 38930 for outgoing packets
Tracing the path to 192.168.1.125 on TCP port 20 (ftp-data), 30 hops max
1 mor1-rt-n124a-1-vl551.gw.umass.edu (128.119.116.1) 0.615 ms 0.504 ms 0.489 ms
2 core1-rt-ae-1.gw.umass.edu (128.119.0.226) 0.442 ms 0.435 ms 0.438 ms
3 lgrc-rt-106-8-po-10.gw.umass.edu (128.119.0.233) 0.606 ms 0.516 ms 0.572 ms
4 128.119.2.197 0.581 ms 0.729 ms 0.573 ms
5 128.119.2.197 0.601 ms !H * *

that was from a computer on network

from off network
port 20 ftp data
tcptraceroute 192.168.1.125 20
Selected device eth0, address 128.119.116.251, port 38930 for outgoing packets
Tracing the path to 192.168.1.125 on TCP port 20 (ftp-data), 30 hops max
1 mor1-rt-n124a-1-vl551.gw.umass.edu (128.119.116.1) 0.615 ms 0.504 ms 0.489 ms
2 core1-rt-ae-1.gw.umass.edu (128.119.0.226) 0.442 ms 0.435 ms 0.438 ms
3 lgrc-rt-106-8-po-10.gw.umass.edu (128.119.0.233) 0.606 ms 0.516 ms 0.572 ms
4 128.119.2.197 0.581 ms 0.729 ms 0.573 ms
5 128.119.2.197 0.601 ms !H * *

port 21 ftp
tcptraceroute 192.168.1.125 21
Selected device eth0, address 128.119.116.251, port 52522 for outgoing packets
Tracing the path to 192.168.1.125 on TCP port 21 (ftp), 30 hops max
1 mor1-rt-n124a-1-vl551.gw.umass.edu (128.119.116.1) 0.588 ms 0.451 ms 0.428 ms
2 core1-rt-ae-1.gw.umass.edu (128.119.0.226) 0.398 ms 0.435 ms 0.387 ms
3 lgrc-rt-106-8-po-10.gw.umass.edu (128.119.0.233) 0.578 ms 0.527 ms 0.490 ms
4 128.119.2.197 0.641 ms 0.643 ms 0.575 ms
5 * * *
6 * * *
7 128.119.2.197 0.668 ms !H * *

That IP address is in one of the ranges without valid routing on the Internet, namely 192.168.0.0/16 (http://www.team-cymru.org/Services/Bogons/). It is only routable inside your LAN.


You set anonymous_enable=YES. Do not do that unless you know exactly what you are doing. If you must enable anonymous access at least set anon_upload_enable=NO and anon_mkdir_write_enable=NO, harden the machine, limit access through the firewall and ensure you monitor for abuse. Also enable and set a log file with xferlog_file=/var/log/vsftpd.log and log_ftp_protocol=YES or set syslog_enable=YES.

Is there any way to get a routable Ip address

You already have 128.119.2.197, haven't you?.

When i run ifconfig i only get 192.168.1.125
i think that 128.119.2.197 is a UMASS ip adrress

thanks for point out the anonymous_enable=YES i thought i had disabeled it

ok i just thought that was my ip addres because it came up in the connection information
and for if config

do you know how to make a domain name so i don't have to remember my ip address

thanks for point out the anonymous_enable=YES i thought i had disabeled it

Try a whatismyipaddress.{net,com,au,pk,whatever}, browserSpy IP info or see the "REMOTE_ADDR" variable in any publicly accessible env.cgi?


Yes it is. Check if you're allowed to use it?


Use any free DDNS service.

thanks
I don't think i'm using the umass ip. the computer that wasn't on my network was connected to UMASS wireless
when it ran the traceroute program

Ah, yes, I overlooked that. But the router the FTP server at 192.168.1.125 resides behind does have a public IP address, right? If so and it's hardware what's the brand and type? OTOH if the router is a Linux machine what distribution and version?

The router is a linksys WRT54G

i think it is 192.168.1.1